94ab615d0508c77a83bf65ce1265413a1a76b44045284ff706f9cee1af45fdbf

Sharing

Copy URL Twitter E-mail

General

Target

94ab615d0508c77a83bf65ce1265413a1a76b44045284ff706f9cee1af45fdbf
Size

29KB
MD5

7101d01f6fc1ec0d92fc50dae9e08b14
SHA1

41d1d55781d4d805e114a6d7726477634b5be19d
SHA256

94ab615d0508c77a83bf65ce1265413a1a76b44045284ff706f9cee1af45fdbf
SHA512

9b4a241ca3927f0fedf52530e8d5ef6df12d7f1af6991d48931b79f02fb9f8000962557749337edd2649824c6207fa105187e0fc134ea0d1bea9d18055cf4c04
SSDEEP

384:qIH4mMXahntfcg0vv3VqGmsa10N6j2IVS0l8HLZ0Ce97SY5C+h7QqD9+O:qvmNhtfcZF5lzIVS02H2H9eY5lcO

Score

N/A

Malware Config

Signatures

Files

94ab615d0508c77a83bf65ce1265413a1a76b44045284ff706f9cee1af45fdbf
.dll windows x86

e5d05c49ab24ae8d2e32b9dc29b1ea06

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseMutex
LoadLibraryA
GetModuleHandleA
FreeLibraryAndExitThread
CreateThread
GetModuleFileNameA
GetWindowsDirectoryA
GetSystemDirectoryA
DisableThreadLibraryCalls
InitializeSListHead
InterlockedPushEntrySList
InterlockedPopEntrySList
ExitProcess
OpenThread
GetCurrentThreadId
GetCurrentThread
SetEvent
ResumeThread
SetThreadContext
CreateMutexA
GetLastError
SuspendThread
AddVectoredExceptionHandler
RemoveVectoredExceptionHandler
Process32Next
Process32First
CreateToolhelp32Snapshot
Module32Next
Module32First
GetCurrentProcessId
VirtualProtect
VirtualQuery
GetSystemInfo
GetProcAddress
WriteFile
CreateFileA
GetShortPathNameA
GetVersionExA
GetTempPathA
WaitForSingleObject
GetTempFileNameA
CloseHandle
CreateProcessA
DeleteFileA
Sleep
OpenMutexA
CreateEventA
PulseEvent
GetThreadContext

user32

CallNextHookEx
SetWindowsHookExA
GetWindowThreadProcessId
GetClassNameA
GetWindowTextA
UnhookWindowsHookEx
EnumDesktopWindows

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegEnumValueA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA

msvcp60

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

wininet

InternetOpenA
InternetCrackUrlA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA
InternetReadFile
InternetCloseHandle
DeleteUrlCacheEntry
InternetConnectA

urlmon

URLDownloadToFileA

ws2_32

setsockopt
WSACleanup
closesocket

msvcrt

_onexit
_initterm
_adjust_fdiv
_mbstok
__dllonexit
_ismbcspace
_mbsinc
memmove
abs
memcmp
_mbsnbicmp
malloc
free
strcpy
_mbsstr
printf
_mbscmp
_mbsupr
_ismbcprint
_snprintf
memset
memcpy
??2@YAPAXI@Z
atoi
_mbsicmp
_memicmp
strcat
fclose
_mbsnbcpy
strlen
fgets
fopen
sprintf
__CxxFrameHandler
_mbschr
_mbsrchr

dbghelp

SearchTreeForFile

Exports

Exports

_DllMain@12

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5d05c49ab24ae8d2e32b9dc29b1ea06

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcp60

wininet

urlmon

ws2_32

msvcrt

dbghelp

Exports

Exports

Sections

.text Size: 26KB - Virtual size: 25KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 26KB - Virtual size: 25KB

.reloc
Size: 2KB - Virtual size: 1KB